Attorney General Lisa Madigan recently drafted legislation to strengthen the state’s Personal Information Protection Act (PIPA). Originally passed in 2005 at Attorney General Madigan’s direction, PIPA made Illinois among the first states in the country to require entities that suffer a data breach to notify Illinois residents if the breached information included residents’ drivers’ license…
Update to Vendini breach: Settlement reached with insurer
Back in September 2013, online ticket broker Vendini was sued by its insurer, who, not surprisingly, did not want to have to provide coverage for a breach that may have affected up to three million customers (previous coverage of the breach and aftermath linked from here). Now the law firm of King & Spalding reports: On February…
Recap of Oral Argument in FTC v. Wyndham
Katherine Gasztonyi reports: Today, the U.S. Court of Appeals for the Third Circuit heard oral arguments in FTC v. Wyndham Worldwide Corp.The court focused on several themes: First, whether Congress has entrusted the FTC to define new unfair practices, whether the FTC has declared that unreasonable cybersecurity practices are unfair, and whether the FTC is asking the…
TX: “Bitcoin Baron” attacked City of San Marcos and San Marcos PD websites in retaliation for assault on student
Joshua Fechter reports: A hacker named “Bitcoin Baron” has claimed responsibility for cyberattacking the City of San Marcos and San Marcos Police Department websites in retaliation against a police officer who allegedly assaulted a Texas State University student in 2013. The websites were down as of Tuesday morning. Read more on MySA.com
NY: Two-Factor Authentication May Be Coming to a Bank Near You
David Smyth of Brooks, Pierce, McLendon, Humphrey & Leonard, LLP writes: When I was at the SEC and online broker-dealers’ customers were the victims of hacking incidents, I used to wonder, why don’t the broker-dealers require multi-factor authentication to gain access to accounts? It was a silly question. I knew the answer. Multi-factor authentication is a pain and…
Hospital Sues Bank of America Over Million-Dollar Cyberheist
Brian Krebs reports: A public hospital in Washington state is suing Bank of America to recoup some of the losses from a $1.03 million cyberheist that the healthcare organization suffered in 2013. In April 2013, organized cyber thieves broke into the payroll accounts of Chelan County Hospital No. 1 , one of several hospitals managed by the Cascade Medical Center in Leavenworth, Wash….